CVE-2012-2199IBM Websphere MQ vulnerability

CWE-3993 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.6%
top 30.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere MQ
Timeline
PublishedSep 25
Latest updateMay 17

Description

The server message channel agent in the queue manager in the server in IBM WebSphere MQ 7.0.1 before 7.0.1.9, 7.1, and 7.5 on Solaris allows remote attackers to cause a denial of service (invalid address alignment exception and daemon crash) via vectors involving a multiplexed channel.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/websphere_mq11 versions+10

🔴Vulnerability Details

2
GHSA
GHSA-hj49-c58v-8jc2: The server message channel agent in the queue manager in the server in IBM WebSphere MQ 72022-05-17
CVEList
CVE-2012-2199: The server message channel agent in the queue manager in the server in IBM WebSphere MQ 72012-09-25
CVE-2012-2199 — IBM Websphere MQ vulnerability | cvebase